Lucene search
MitreCVELIST:CVE-2012-6348HistoryOct 03, 2022 - 4:15 p.m.
CVE-2012-6348
2022-10-0316:15:29
mitre
www.cve.org
Centrify Deployment Manager 2.1.0.283, as distributed in Centrify Suite before 2012.5, allows local users to (1) overwrite arbitrary files via a symlink attack on the adcheckDMoutput temporary file, or (2) overwrite arbitrary files and consequently gain privileges via a symlink attack on the centrify.cmd.0 temporary file.
References
archives.neohapsis.com/archives/bugtraq/2012-12/0036.html
archives.neohapsis.com/archives/bugtraq/2012-12/0037.html
archives.neohapsis.com/archives/bugtraq/2012-12/0071.html
archives.neohapsis.com/archives/bugtraq/2012-12/0097.html
archives.neohapsis.com/archives/bugtraq/2012-12/0113.html
vapid.dhs.org/advisories/centrify_deployment_manager_insecure_tmp2.html
vapid.dhs.org/exploits/centrify_local_r00t.c
Related
cve
cve
CVE-2012-6348
2022-10-03 16:15:29
prion
prion
Code injection
2013-01-04 21:55:00
packetstorm
packetstorm
Centrify Deployment Manager 2.1.0.283 Local Root
2012-12-18 00:00:00
securityvulns
securityvulns
Centrify Deployment Manager symbolic links vulnerability
2013-01-02 00:00:00
nvd
nvd
CVE-2012-6348
2013-01-04 21:55:01